On July 21, 2021, a group of bipartisan Senators formally introduced the Cyber Incident Notification Act of 2021. This legislation, if passed, would require nearly all federal contractors and subcontractors (at all tiers) to report actual and potential cybersecurity intrusions to the Department of Homeland Security within 24 hours. Unlike previous cybersecurity requirements that have applied only to contractors in certain industries, such as defense or information technology, this legislation is intended to cover contractors throughout the Federal supply chain. Therefore, real estate and construction companies that hold contracts or subcontracts in support of the Federal government would be subject to these new, more onerous reporting requirements. Colleagues Brian E. Finch, Michael R. Rizzo and Meghan D. Doherty discuss the bipartisan legislation in a recent alert.
Proposed Cyber Incident Notification Act of 2021 and the Real Estate Industry